UAE Sets A Social Media Age Gate. Enforcement Is The Hard Part.

A Cabinet Rule Moves Child Safety Into Platform Design

The UAE Cabinet has set a national age gate for social media use, barring children under the age of 15 from creating, using or operating personal accounts.

The restriction also reaches full platform features such as social interaction, publishing, commenting, sharing, public groups, open channels and other large interactive spaces.

The rule is not limited to one app category.

It applies to social media services that let users create accounts or personal profiles, engage with other users, publish or share content, or rely on algorithmic systems to display, rank or recommend posts.

It covers free and paid platforms whose services are available in the UAE or directed at users in the country.

That scope turns a child-safety decision into a platform-compliance problem.

Social media companies will need technical and administrative controls that can block access for users below the age threshold while still handling privacy and data-protection duties.

The Middle Band Gets Protection, Not A Full Ban

The Cabinet resolution draws a second line for children between 15 and 16.

They may use social media, but only with enhanced protective measures applied to their accounts.

That makes the policy more granular than a simple access ban.

The listed safeguards cover content controls suited to age, limits on risky contact with unknown users, restrictions on time spent on the service and parental control tools.

In practice, the platform account for a 15-year-old user is expected to behave differently from a standard adult account.

The resolution also treats recommendation systems as part of the compliance surface because it includes platforms that display, rank or recommend content through algorithms.

That puts feed design, interaction features and account controls inside the same enforcement problem.

This is where implementation becomes difficult.

A platform has to identify the user’s age, apply restrictions to the correct account, limit risky interactions and maintain parental tools without collecting more personal data than necessary.

The resolution links safety controls directly to privacy obligations, not only content moderation.

Self-Declared Age Is No Longer Enough

The most operationally important line is the rejection of self-declared age as a valid verification method.

Providers must use mechanisms that achieve a high level of accuracy in determining user age while meeting child privacy and personal data-protection standards.

The resolution also points to data minimisation, secure processing and limits on retention beyond the period strictly necessary.

Those requirements narrow the room for blunt verification systems that gather excessive identity data simply to prove age.

Regular reviews and auditing are part of the mandate.

That means compliance is not just a one-time settings change.

Platforms will need evidence that their age-verification and protection systems continue to work after launch, after product changes and across services available to UAE users.

The 12-Month Clock Tests Compliance Capacity

The ruling gives platforms a compliance window of up to 12 months.

Accounts created by children under 15 in breach of the resolution must be monitored, and platforms are expected to take immediate action to suspend or disable them.

For the UAE, the policy adds a clear digital-safety benchmark: under-15 access is barred, 15-to-16 accounts require extra safeguards, and self-declaration cannot carry the verification burden.

For platforms, the unresolved test is practical: accurate age checks, limited data collection, parental controls and account enforcement all have to operate together before the 12-month deadline expires.